You might be alarmed to learn that Roku has recently reported a significant security breach. This breach resulted in unauthorised access to 15,363 Roku accounts. Bleeping Computer, a renowned cybersecurity news site, first reported the incident.
The breach occurred when hackers gained access using login details possibly obtained from previous data breaches at third-party services. This method, known as credential stuffing, involves using previously exposed email addresses and passwords to break into other services. Once these hackers entered the Roku accounts, they didn’t stop there. Sometimes, they changed the login details, effectively locking out the legitimate account owners and taking complete control.
Impact on affected users
The situation was even more grave for those accounts that had credit card information stored. Hackers used this access to subscribe to streaming services such as Netflix, Max, Paramount Plus, Hulu, Peacock, and Disney Plus. This wasn’t just a hit-and-run tactic; Bleeping Computer discovered that these hackers were selling the stolen account details. The going rate? A mere 50 cents per account on a hacking marketplace.
Thankfully, Roku has assured its customers that this breach did not reveal susceptible information like social security numbers, total payment account numbers, or birth dates. Nevertheless, the breach’s impact cannot be underestimated. Roku has responded by securing the compromised accounts against further unauthorised access. They have advised the affected users to reset their passwords and are working diligently to cancel and refund any unauthorised transactions.
Steps to safeguard your account
Even if this breach didn’t directly impact your Roku account, it’s a stark reminder of the importance of online security. To check if any of your credentials have been compromised in the past, visit HaveIBeenPwned, a well-known site that tracks data breaches. Additionally, updating your Roku password is a prudent step, even if just as a precaution.
In an era when digital security is more important than ever, it is crucial to stay informed and proactive about protecting your personal information. Regularly updating passwords and being aware of the security status of your online accounts can help safeguard your digital life.
